This job listing has expired and the position may no longer be open for hire.

Privacy Analyst and Compliance Associate, Office of General Counsel at Dana-Farber Cancer Institute

Posted in Other 30+ days ago.

This job brought to you by America's Job Exchange

Type: Full Time
Location: BROOKLINE, Massachusetts

Job Description:


Located in Boston and the surrounding communities, Dana-Farber Cancer Institute brings together world renowned clinicians, innovative researchers and dedicated professionals, allies in the common mission of conquering cancer, HIV/AIDS and related diseases. Combining extremely talented people with the best technologies in a genuinely positive environment, we provide compassionate and comprehensive care to patients of all ages; we conduct research that advances treatment; we educate tomorrow's physician/researchers; we reach out to underserved members of our community; and we work with amazing partners, including other Harvard Medical School-affiliated hospitals.

The Privacy Analyst and Compliance Associate is a key team member in Dana-Farber Cancer Institute s (DFCI s) privacy, information security and compliance programs and activities. This role is accountable to the Privacy Officer (within the Office of General Counsel) for privacy matters (80 percent) and to the Chief Compliance Officer for compliance matters (20 percent). The role also supports the collaborative efforts of the Institute s information security and privacy program (IS&P). For privacy work, this individual is responsible for helping manage the privacy program, including responding to inquiries, conducting investigations, leading or assisting in privacy program projects, conducting training, performing auditing/monitoring activities, and preparing policies. This role works in close coordination with the Privacy Officer, Information Security Officer, Chief Compliance Officer, Chief Information Officer and other IS&P team members. For compliance work, this individual will assist the Chief Compliance Officer in achieving compliance workplan goals and/or other special compliance projects. S/he will assist in administering the compliance program, including conducting limited compliance investigations and data management


* At the Privacy Officers direction, respond to privacy inquiries and conduct investigations, including:

* Prepare intake documentation, conduct interviews, review applicable policies, research relevant laws, regulations and agency guidance.

* Conduct risk assessment to evaluate breach and other state/federal/patient reporting requirements.

* Identify root causes of issues, assess trends, and recommend operational and policy/procedural changes.

* Document inquiries and investigation in compliance issues database, and monitor and resolve/investigate all assigned inquiries/investigations.

* Assist with certain information security investigations and projects.

* Assist in performing assessments, inventory and gap analyses of existing hospital and departmental-level policy and procedures according to privacy standards, including federal audit readiness.

* Responsible for ensuring mailings to breached individuals are accurate, timely and recorded for regulatory requirements and reporting.

* Work with the Institute s Communication Department to foster privacy awareness across the Institute.

* Assist in development of, and conduct, new hire, annual and department-specific IS&P training and education.

* Perform medical record access and other audit/monitoring activities and provide summary reports.

* Work collaboratively with appropriate staff in overseeing patients rights to inspect, amend, restrict access to, and receive accounting of disclosures, of their medical records.

* Respond to requests for information regarding privacy policies.

* Work with team to create IS&P web site content and improve design with site developers.

* Lead or assist with planned and unplanned privacy projects.

* Assist in all U.S. Department of Health and Human Services, Office of Civil Rights, or other federal or state entity s privacy program audits, inquiries or investigations.

* Enhance professional growth and development by participating in educational programs, distributing and reading current literature and conducting and participating in in-service meetings and workshops.

* Maintain current knowledge of applicable federal and state privacy laws and accreditation standards, and monitor advancements in privacy technologies to assist with organizational adaptation and compliance.

* Work to achieve compliance program and workplan goals.

* Assist the Chief Compliance Officer in conducting investigations and programmatic activities, including data management.


* Bachelor s degree required

* 1-3 years of full-time experience with privacy, information security and/or health information management within a healthcare environment

* Ability to work efficiently with all levels of staff and clinicians including attorneys, department leaders, information systems, security, and human resources

* Knowledge of and experience in working with federal and state privacy laws, including but not limited to those pertaining to access, release of information, and release control technologies

* Knowledge of and experience in working with federal and state privacy laws, including but not limited to those pertaining to access, release of information, and release control technologies

* MS Office (Word, Excel, Access, PowerPoint) expertise and knowledge of or ability to learn electronic medical record auditing software

* Health Care Compliance Association certification (privacy or compliance), American Health Information Management Association (AHIMA) accreditation, Registered Health Information Technician or Administrator (RHIT/RHIA), compliance and/or academic medical center experience preferred

Commitment and ability to:

* Work in a team-based environment; strong commitment to maintain confidentiality and privacy

* Handle patient interactions/communication with extreme care, patience and consideration, and create an environment with open channels of communication within the Institute with workforce members, patients and others.

* Possess excellent organization, attention to detail, facilitation, technical and analytical skills.

* Approach problems with curiosity and open-mindedness and offer new ideas, solutions and/or options.

* Demonstrate discretion, diplomacy, and good judgment.

* Possess excellent communication and presentation skills; clearly and concisely express ideas in groups and one-to-one conversations, formal and informal documents.

* Adapt writing and communications styles to fit the audience.

* Project management and change management skills; ensuring projects come to fruition from inception to completion.

* Ability to appropriately prioritize work responsibilities and effectively manage fluctuation in workload demands.

Dana-Farber Cancer Institute is an equal opportunity employer and affirms the right of every qualified applicant to receive consideration for employment without regard to race, color, religion, sex, gender identity or expression, national origin, sexual orientation, genetic information, disability, age, ancestry, military service, protected veteran status, or other groups as protected by law.